syzkaller login: [ 66.749190] sshd (231) used greatest stack depth: 24232 bytes left Warning: Permanently added '[localhost]:15163' (ECDSA) to the list of known hosts. 2025/01/17 20:19:22 fuzzer started 2025/01/17 20:19:23 dialing manager at localhost:44245 [ 69.805720] cgroup: Unknown subsys name 'net' [ 69.911544] cgroup: Unknown subsys name 'cpuset' [ 69.961574] cgroup: Unknown subsys name 'rlimit' [ 75.116911] kmemleak: 2 new suspected memory leaks (see /sys/kernel/debug/kmemleak) 2025/01/17 20:19:41 syscalls: 2217 2025/01/17 20:19:41 code coverage: enabled 2025/01/17 20:19:41 comparison tracing: enabled 2025/01/17 20:19:41 extra coverage: enabled 2025/01/17 20:19:41 setuid sandbox: enabled 2025/01/17 20:19:41 namespace sandbox: enabled 2025/01/17 20:19:41 Android sandbox: enabled 2025/01/17 20:19:41 fault injection: enabled 2025/01/17 20:19:41 leak checking: enabled 2025/01/17 20:19:41 net packet injection: enabled 2025/01/17 20:19:41 net device setup: enabled 2025/01/17 20:19:41 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/01/17 20:19:41 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/01/17 20:19:41 USB emulation: enabled 2025/01/17 20:19:41 hci packet injection: enabled 2025/01/17 20:19:41 wifi device emulation: enabled 2025/01/17 20:19:41 802.15.4 emulation: enabled 2025/01/17 20:19:41 fetching corpus: 0, signal 0/2000 (executing program) 2025/01/17 20:19:41 fetching corpus: 1, signal 573/2047 (executing program) 2025/01/17 20:19:41 fetching corpus: 1, signal 573/2047 (executing program) 2025/01/17 20:19:44 starting 8 fuzzer processes 20:19:44 executing program 0: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xfc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'syz_tun\x00', 0x0}) setsockopt$packet_add_memb(r0, 0x107, 0x1, &(0x7f0000000080)={r1, 0x1, 0x6, @broadcast}, 0x10) setsockopt$packet_add_memb(r0, 0x107, 0x1, &(0x7f0000000180)={r1, 0x1, 0x6, @broadcast}, 0x10) 20:19:44 executing program 1: openat2$dir(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/cgroup.procs\x00', &(0x7f0000000140)={0x40, 0x0, 0x5}, 0x18) 20:19:44 executing program 2: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xfd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000002340), 0x0) ioctl$SNDRV_SEQ_IOCTL_GET_PORT_INFO(r0, 0xc0a85322, &(0x7f00000015c0)) 20:19:44 executing program 3: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000440)={0x1, &(0x7f0000000400)=[{0x20, 0x0, 0x0, 0xfffffffb}]}) [ 90.913381] audit: type=1400 audit(1737145184.609:7): avc: denied { execmem } for pid=273 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 20:19:44 executing program 5: prctl$PR_MCE_KILL(0x26, 0x1, 0x3) 20:19:44 executing program 6: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x82, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFULNL_MSG_CONFIG(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, 0x1, 0x4, 0x301, 0x0, 0x0, {}, [@NFULA_CFG_CMD={0x5, 0x1, 0x3}]}, 0x1c}}, 0x0) 20:19:44 executing program 4: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) waitid(0x0, 0x0, 0x0, 0x4, 0x0) 20:19:44 executing program 7: r0 = syz_open_dev$loop(&(0x7f0000002140), 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x80081272, &(0x7f0000000000)={0x0, {}, 0x0, {}, 0x0, 0x0, 0x0, 0x0, "1690a8b1f1271fc0e80fe71c384001daa105709a4672a7fc2aaa04cbf093e61925224aa3834e381641d371884c3febf8615580fcee8c3e572c0e6bf759ac6e42", "d5ad544bb50cead8dd3a63296ff34cbd48581e19dda39092a1940552095e57f6"}) [ 92.370218] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 92.372451] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 92.374358] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 92.376146] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 92.378293] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 92.380239] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 92.381383] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 92.382514] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 92.385078] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 92.386807] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 92.392390] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 92.419023] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 92.421734] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 92.427044] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 92.429143] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 92.436709] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 92.449052] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 92.460089] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 92.464119] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 92.469540] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 92.471027] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 92.480106] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 92.485742] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 92.487175] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 92.488174] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 92.489412] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 92.493006] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 92.493211] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 92.505807] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 92.525959] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 92.533993] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 92.534047] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 92.535060] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 92.538647] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 92.548185] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 92.553056] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 92.553316] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 92.556414] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 92.557389] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 92.563698] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 92.565512] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 92.567484] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 92.569189] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 92.572979] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 92.582829] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 92.609778] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 92.624873] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 92.627206] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 94.450297] Bluetooth: hci0: command tx timeout [ 94.450584] Bluetooth: hci1: command tx timeout [ 94.513896] Bluetooth: hci2: command tx timeout [ 94.577721] Bluetooth: hci3: command tx timeout [ 94.641854] Bluetooth: hci4: command tx timeout [ 94.642027] Bluetooth: hci5: command tx timeout [ 94.642143] Bluetooth: hci7: command tx timeout [ 94.706758] Bluetooth: hci6: command tx timeout [ 96.498697] Bluetooth: hci1: command tx timeout [ 96.498792] Bluetooth: hci0: command tx timeout [ 96.562778] Bluetooth: hci2: command tx timeout [ 96.626718] Bluetooth: hci3: command tx timeout [ 96.690783] Bluetooth: hci7: command tx timeout [ 96.690881] Bluetooth: hci5: command tx timeout [ 96.690931] Bluetooth: hci4: command tx timeout [ 96.754690] Bluetooth: hci6: command tx timeout [ 98.546782] Bluetooth: hci0: command tx timeout [ 98.547398] Bluetooth: hci1: command tx timeout [ 98.612455] Bluetooth: hci2: command tx timeout [ 98.674723] Bluetooth: hci3: command tx timeout [ 98.738714] Bluetooth: hci4: command tx timeout [ 98.738797] Bluetooth: hci5: command tx timeout [ 98.738888] Bluetooth: hci7: command tx timeout [ 98.804639] Bluetooth: hci6: command tx timeout [ 100.594891] Bluetooth: hci1: command tx timeout [ 100.595384] Bluetooth: hci0: command tx timeout [ 100.658781] Bluetooth: hci2: command tx timeout [ 100.722696] Bluetooth: hci3: command tx timeout [ 100.787026] Bluetooth: hci7: command tx timeout [ 100.787272] Bluetooth: hci5: command tx timeout [ 100.787384] Bluetooth: hci4: command tx timeout [ 100.850800] Bluetooth: hci6: command tx timeout [ 152.405734] syz-executor.3 (281) used greatest stack depth: 24000 bytes left [ 155.335216] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 155.344402] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 155.347452] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 155.355378] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 155.361156] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 155.364438] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 155.391986] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 155.400445] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 155.404435] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 155.419808] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 155.425146] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 155.427828] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 155.471238] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 155.479034] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 155.483063] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 155.500250] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 155.505369] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 155.509104] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 155.617633] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 155.624254] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 155.629126] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 155.668119] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 155.673144] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 155.677846] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 155.723146] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 155.724433] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 155.736524] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 155.745854] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 155.754164] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 155.757300] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 155.764036] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 155.766239] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 155.772821] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 155.776113] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 155.779485] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 155.804773] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 155.825346] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 155.837367] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 155.839570] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 155.849945] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 155.862213] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 155.865177] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 155.873969] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 155.882517] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 155.898177] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 155.916032] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 155.958149] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 155.966940] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 157.426360] Bluetooth: hci0: command tx timeout [ 157.489760] Bluetooth: hci1: command tx timeout [ 157.553912] Bluetooth: hci2: command tx timeout [ 157.745783] Bluetooth: hci3: command tx timeout [ 157.937838] Bluetooth: hci6: command tx timeout [ 158.004713] Bluetooth: hci7: command tx timeout [ 158.004722] Bluetooth: hci4: command tx timeout [ 158.129813] Bluetooth: hci5: command tx timeout [ 159.473789] Bluetooth: hci0: command tx timeout [ 159.537723] Bluetooth: hci1: command tx timeout [ 159.601809] Bluetooth: hci2: command tx timeout [ 159.794655] Bluetooth: hci3: command tx timeout [ 159.985961] Bluetooth: hci6: command tx timeout [ 160.050052] Bluetooth: hci4: command tx timeout [ 160.050091] Bluetooth: hci7: command tx timeout [ 160.177928] Bluetooth: hci5: command tx timeout [ 161.521675] Bluetooth: hci0: command tx timeout [ 161.585688] Bluetooth: hci1: command tx timeout [ 161.649755] Bluetooth: hci2: command tx timeout [ 161.841714] Bluetooth: hci3: command tx timeout [ 162.034002] Bluetooth: hci6: command tx timeout [ 162.097759] Bluetooth: hci4: command tx timeout [ 162.098807] Bluetooth: hci7: command tx timeout [ 162.226044] Bluetooth: hci5: command tx timeout [ 163.570046] Bluetooth: hci0: command tx timeout [ 163.635737] Bluetooth: hci1: command tx timeout [ 163.697835] Bluetooth: hci2: command tx timeout [ 163.889706] Bluetooth: hci3: command tx timeout [ 164.081773] Bluetooth: hci6: command tx timeout [ 164.145750] Bluetooth: hci4: command tx timeout [ 164.148206] Bluetooth: hci7: command tx timeout [ 164.274469] Bluetooth: hci5: command tx timeout [ 217.558101] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 217.559693] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 217.565157] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 217.566424] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 217.567550] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 217.569326] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 217.576218] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 217.576918] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 217.582792] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 217.584841] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 217.589818] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 217.599044] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 217.600281] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 217.601408] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 217.602972] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 217.607990] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 217.609843] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 217.613413] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 217.613774] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 217.615794] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 217.618127] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 217.622222] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 217.633258] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 217.635542] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 217.639312] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 217.640772] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 217.656549] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 217.659376] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 217.660349] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 217.664924] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 217.674974] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 217.680266] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 217.682081] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 217.686009] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 217.703969] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 217.706043] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 217.724421] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 217.745526] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 217.754095] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 217.758890] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 217.759292] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 217.774165] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 217.783518] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 217.783926] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 217.786470] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 217.796354] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 217.798762] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 217.803437] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 219.634637] Bluetooth: hci1: command tx timeout [ 219.697837] Bluetooth: hci2: command tx timeout [ 219.698368] Bluetooth: hci0: command tx timeout [ 219.698489] Bluetooth: hci4: command tx timeout [ 219.761712] Bluetooth: hci5: command tx timeout [ 219.889824] Bluetooth: hci3: command tx timeout [ 219.890682] Bluetooth: hci7: command tx timeout [ 219.890815] Bluetooth: hci6: command tx timeout [ 221.681813] Bluetooth: hci1: command tx timeout [ 221.748623] Bluetooth: hci4: command tx timeout [ 221.748716] Bluetooth: hci0: command tx timeout [ 221.748807] Bluetooth: hci2: command tx timeout [ 221.810644] Bluetooth: hci5: command tx timeout [ 221.938805] Bluetooth: hci6: command tx timeout [ 221.938942] Bluetooth: hci7: command tx timeout [ 221.939034] Bluetooth: hci3: command tx timeout [ 223.730710] Bluetooth: hci1: command tx timeout [ 223.793684] Bluetooth: hci2: command tx timeout [ 223.793792] Bluetooth: hci0: command tx timeout [ 223.793888] Bluetooth: hci4: command tx timeout [ 223.857667] Bluetooth: hci5: command tx timeout [ 223.985652] Bluetooth: hci6: command tx timeout [ 223.985750] Bluetooth: hci7: command tx timeout [ 223.985801] Bluetooth: hci3: command tx timeout [ 225.778794] Bluetooth: hci1: command tx timeout [ 225.842721] Bluetooth: hci2: command tx timeout [ 225.842841] Bluetooth: hci4: command tx timeout [ 225.842896] Bluetooth: hci0: command tx timeout [ 225.906754] Bluetooth: hci5: command tx timeout [ 226.033906] Bluetooth: hci3: command tx timeout [ 226.034108] Bluetooth: hci7: command tx timeout [ 226.034170] Bluetooth: hci6: command tx timeout [ 277.312929] syz-executor.4 (6928) used greatest stack depth: 23896 bytes left [ 279.941378] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 279.946024] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 279.947614] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 279.949704] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 279.952412] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 279.954792] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 279.961284] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 279.968266] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 279.971257] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 279.973381] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 279.975858] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 279.978292] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 280.070948] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 280.074832] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 280.076904] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 280.080925] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 280.080956] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 280.082268] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 280.088011] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 280.091092] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 280.093105] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 280.103251] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 280.107025] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 280.130284] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 280.159896] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 280.164203] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 280.166837] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 280.186102] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 280.198120] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 280.211183] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 280.220495] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 280.223695] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 280.243002] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 280.244747] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 280.251016] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 280.253539] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 280.259978] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 280.266829] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 280.273737] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 280.279998] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 280.284194] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 280.285265] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 280.286130] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 280.293299] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 280.295881] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 280.338982] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 280.360501] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 280.363124] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 282.034701] Bluetooth: hci1: command tx timeout [ 282.035128] Bluetooth: hci0: command tx timeout [ 282.161816] Bluetooth: hci2: command tx timeout [ 282.226198] Bluetooth: hci3: command tx timeout [ 282.289736] Bluetooth: hci4: command tx timeout [ 282.354138] Bluetooth: hci6: command tx timeout [ 282.354783] Bluetooth: hci7: command tx timeout [ 282.481995] Bluetooth: hci5: command tx timeout [ 284.081808] Bluetooth: hci0: command tx timeout [ 284.081961] Bluetooth: hci1: command tx timeout [ 284.209707] Bluetooth: hci2: command tx timeout [ 284.273746] Bluetooth: hci3: command tx timeout [ 284.339684] Bluetooth: hci4: command tx timeout [ 284.401675] Bluetooth: hci6: command tx timeout [ 284.401816] Bluetooth: hci7: command tx timeout [ 284.529623] Bluetooth: hci5: command tx timeout [ 286.129911] Bluetooth: hci1: command tx timeout [ 286.130126] Bluetooth: hci0: command tx timeout [ 286.258785] Bluetooth: hci2: command tx timeout [ 286.321721] Bluetooth: hci3: command tx timeout [ 286.385722] Bluetooth: hci4: command tx timeout [ 286.450029] Bluetooth: hci7: command tx timeout [ 286.450222] Bluetooth: hci6: command tx timeout [ 286.577800] Bluetooth: hci5: command tx timeout [ 288.178666] Bluetooth: hci0: command tx timeout [ 288.178778] Bluetooth: hci1: command tx timeout [ 288.307143] Bluetooth: hci2: command tx timeout [ 288.371618] Bluetooth: hci3: command tx timeout [ 288.434720] Bluetooth: hci4: command tx timeout [ 288.498625] Bluetooth: hci6: command tx timeout [ 288.498707] Bluetooth: hci7: command tx timeout [ 288.627143] Bluetooth: hci5: command tx timeout [ 342.343650] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 342.363399] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 342.366166] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 342.379984] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 342.383230] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 342.385363] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 342.655935] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 342.662753] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 342.665027] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 342.674898] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 342.678150] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 342.680465] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 342.794266] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 342.814388] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 342.817157] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 342.821976] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 342.826935] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 342.834395] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 342.842431] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 342.843333] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 342.853525] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 342.860939] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 342.861991] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 342.868940] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 342.872124] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 342.882466] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 342.885382] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 342.891843] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 342.901933] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 342.904010] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 342.914048] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 342.941104] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 342.942588] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 342.944984] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 342.950986] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 342.960836] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 342.962114] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 342.968832] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 342.969943] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 342.971026] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 342.973463] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 343.010724] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 343.047185] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 343.049024] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 343.049985] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 343.071489] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 343.123006] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 343.144943] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 344.433640] Bluetooth: hci0: command tx timeout [ 344.754631] Bluetooth: hci1: command tx timeout [ 345.009658] Bluetooth: hci5: command tx timeout [ 345.010061] Bluetooth: hci2: command tx timeout [ 345.073792] Bluetooth: hci3: command tx timeout [ 345.074174] Bluetooth: hci4: command tx timeout [ 345.201712] Bluetooth: hci7: command tx timeout [ 345.265827] Bluetooth: hci6: command tx timeout [ 346.481913] Bluetooth: hci0: command tx timeout [ 346.801658] Bluetooth: hci1: command tx timeout [ 347.058608] Bluetooth: hci2: command tx timeout [ 347.058695] Bluetooth: hci5: command tx timeout [ 347.121902] Bluetooth: hci3: command tx timeout [ 347.121998] Bluetooth: hci4: command tx timeout [ 347.249887] Bluetooth: hci7: command tx timeout [ 347.313611] Bluetooth: hci6: command tx timeout [ 348.530630] Bluetooth: hci0: command tx timeout [ 348.849766] Bluetooth: hci1: command tx timeout [ 349.105669] Bluetooth: hci5: command tx timeout [ 349.105767] Bluetooth: hci2: command tx timeout [ 349.169665] Bluetooth: hci4: command tx timeout [ 349.169761] Bluetooth: hci3: command tx timeout [ 349.297835] Bluetooth: hci7: command tx timeout [ 349.361631] Bluetooth: hci6: command tx timeout [ 350.577632] Bluetooth: hci0: command tx timeout [ 350.897766] Bluetooth: hci1: command tx timeout [ 351.153674] Bluetooth: hci2: command tx timeout [ 351.153774] Bluetooth: hci5: command tx timeout [ 351.218870] Bluetooth: hci3: command tx timeout [ 351.220173] Bluetooth: hci4: command tx timeout [ 351.345735] Bluetooth: hci7: command tx timeout [ 351.409659] Bluetooth: hci6: command tx timeout VM DIAGNOSIS: 20:24:52 Registers: info registers vcpu 0 RAX=0000000000000000 RBX=ffff88800f1eb780 RCX=1ffffffff0c7fcd1 RDX=1ffff11001e3d839 RSI=0000000000000006 RDI=ffffffff84aae20c RBP=ffffffff84aae20c RSP=ffff88802a287cc0 R8 =0000000000000001 R9 =0000000000000001 R10=ffffffff864021d7 R11=0000000000000001 R12=ffff888009454140 R13=ffffea0000f0fb80 R14=0000000000000000 R15=ffff88803c3ee4a0 RIP=ffffffff84a8ab92 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f30e8c6a540 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f513d2b659e CR3=000000003022c000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=0000ffff000000000000000000000000 XMM02=ffffffffffffffff0f0e0d0c0b0a0908 XMM03=756e20796d6d756420736e6f6974706f XMM04=2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=676f6c206d6f74737563000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=000000000001267e RBX=0000000000000002 RCX=ffffffff815ec7be RDX=0000000000012686 RSI=0000000000005ec7 RDI=ffffffff867df18c RBP=ffff88806cf09ad0 RSP=ffff88806cf09a08 R8 =ffffffff867df15c R9 =ffff88806cf09ab8 R10=000000000003ab4d R11=000000000001267e R12=ffff88806cf09ad8 R13=ffff88806cf09ac0 R14=ffff88806cf09ab9 R15=ffff88806cf09a78 RIP=ffffffff813490f4 RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f951566f8e0 CR3=000000003c254000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=000000000000ff000000000000000000 XMM01=00ff0000000001002e6f732e6362696c XMM02=312e312e6f732e6f747079726362696c XMM03=00000000000000000000000000000000 XMM04=000000000000ff000000000000000000 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000